Features

Two-Factor Authentication (2FA)

Allow for the use of a second CBE authentication method via user configured email

>   This feature allows for a more secure user authentication using email-based tokens during login and password change processes;

>   The feature can be enabled/disabled via system parameter.

Brute Force Protection/Failed Concurrent Login Attempt Prevention

Protects the system from Brute Force Attacks

>   This feature ensures a user’s account is blocked for 10 minutes after 5 consecutive failed login or password change attempts;

>   The feature can be enabled/disabled via system parameter.

Upgrade Transformer to Saxon

The XSLT transformer has been updated to Saxon

>   New implementation is more secure than the previous one;

>   Allows for the benefits of Saxon to be used within report generation.

Security

Various Security Fixes

Various security fixes to increase security of CableBuilder

>   Disable access to external sources to prevent external vulnerabilities (through the Saxon library implementation);

>   Used more cryptographically secure methods for password and license handling;

>   Removed several cross site scripting vulnerabilities.

Upgraded Password Encryption

Password encryption method changed to enhance security

>   New password encryption technology is used to keep the passwords more secure.

Bug Fixes

Fixed Making Marking Text From Design

>   Fixed the issue where making marking texts from the design screen would not create the marking text.

Fixed Deleting a Standard Table Version

>   Fixed the issue where deleting a version of a standard table would cause the page to navigate to the wrong page.

A Warning For All 5.3 CableBuilder Enterprise Users

Reports made to work with XALAN may not work with SAXON. This is due to the way the XSLT specification has been interpreted, so reports may need to be fixed. However, most fixes are minor and will only require small modifications to get them working again. Please contact support if you require assistance.